Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ss3a7YhzWWZodP8SUcrh2QY0tds.roa
File: ss3a7YhzWWZodP8SUcrh2QY0tds.roa (raw, json)
Hash identifier: Q9fJb4FIPfnw0oE+SFA2s5NnapqBWsFAdQh4b9KCFpk=
Subject key identifier: B2:CD:DA:ED:88:73:59:66:68:74:FF:12:51:CA:E1:D9:06:34:B5:DB
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01839CEA5F341FA87B09DE84E52375A23355
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ss3a7YhzWWZodP8SUcrh2QY0tds.roa
Signing time: Mon 03 Oct 2022 08:15:48 +0000
ROA not before: Mon 03 Oct 2022 08:15:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.107.161.0/24 maxlen: 24
194.107.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:ea:5f:34:1f:a8:7b:09:de:84:e5:23:75:a2:33:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 3 08:15:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2cddaed887359666874ff1251cae1d90634b5db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f0:58:5f:98:09:22:6c:c9:1f:0c:1f:48:7d:
8d:38:d8:08:46:9f:51:19:ef:0f:7b:c3:e6:10:09:
63:49:3a:6b:f4:1e:d1:d8:53:8c:c6:d0:3a:e9:99:
fe:a0:f0:b2:4f:6d:c9:a3:98:1c:8d:60:0f:aa:31:
09:60:e6:3e:cb:85:83:68:63:3b:ea:b1:8a:96:81:
2e:b9:55:a1:4f:65:50:1e:2f:f9:bc:6e:f4:fd:58:
66:75:13:55:6b:dd:2a:a2:27:b2:25:f0:82:e4:9e:
fd:49:1a:fd:2e:f8:7e:09:4b:31:a4:f7:a7:27:e7:
57:4d:9b:9b:f1:d2:a7:d7:d3:42:ca:65:28:dd:9b:
3f:1c:99:15:b4:d2:ed:5e:60:b6:68:a0:0a:34:86:
72:11:9b:7a:73:e4:3c:90:27:ee:7c:4f:d8:4c:87:
c0:bc:8c:0f:33:d0:c5:78:13:f0:5c:8a:af:fa:8d:
d7:04:ea:21:37:d0:62:b0:3c:f5:e6:54:70:bd:b6:
c3:0f:52:d4:68:59:7c:c2:c5:4a:c6:74:54:0a:55:
14:4d:87:b5:41:7d:e2:dc:9c:b2:9e:06:d3:b2:e8:
de:52:ac:ea:2c:8c:6b:d1:f6:d9:55:6a:1d:22:fd:
6a:ec:f1:ad:2e:eb:0c:9c:20:0c:f5:15:58:4b:3a:
a2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CD:DA:ED:88:73:59:66:68:74:FF:12:51:CA:E1:D9:06:34:B5:DB
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ss3a7YhzWWZodP8SUcrh2QY0tds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.160.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:96:32:4a:ef:2a:ea:5f:36:18:77:09:4a:b8:54:1e:fa:b1:
e6:3c:ed:a2:0d:71:a7:27:c8:ff:29:5e:b7:44:ca:d5:62:ed:
34:6e:df:3e:1c:ca:9d:9b:f5:32:ea:0c:14:c1:db:a2:6b:57:
6c:ce:b6:df:6e:b3:c7:5f:f1:2a:4b:12:d7:d7:0e:b3:60:63:
b5:79:43:c7:17:30:59:84:68:6f:f3:c9:c1:53:88:d2:f0:f5:
a3:b3:b5:88:3b:37:23:4d:d4:30:a1:2b:66:49:5e:7f:4c:dd:
8d:6d:f9:fd:97:31:37:7b:8e:e1:07:af:03:30:76:2c:10:37:
e7:51:e6:66:f6:2f:29:f4:9f:ba:75:07:39:96:ce:4b:77:a2:
31:af:17:7f:91:4f:be:5f:e1:24:e7:02:18:bf:72:96:26:42:
9d:99:56:12:e3:d6:e0:70:fd:2d:cc:33:5f:66:ff:8a:b7:cd:
54:ea:03:9a:f6:6f:c3:80:bc:1c:74:c7:19:07:14:33:2a:36:
93:3e:99:d1:d0:0a:1c:96:8d:d7:e7:c6:8e:0d:fa:e0:ac:12:
f3:e6:55:01:5d:a0:1b:f0:e0:c0:8b:56:02:8c:a7:a3:d1:d6:
91:38:4f:b8:99:a0:9f:e6:a6:5a:3a:35:9f:3a:85:cf:dd:24:
54:b1:60:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOc6l80H6h7Cd6E5SN1ojNVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZTU5ZDI0NWQxNTBkYzM4YzQ4OTYyNjNkY2JkY2JiZDY3
NDcwYTcwHhcNMjIxMDAzMDgxNTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmNkZGFlZDg4NzM1OTY2Njg3NGZmMTI1MWNhZTFkOTA2MzRiNWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhvBYX5gJImzJHwwfSH2NONgIRp9R
Ge8Pe8PmEAljSTpr9B7R2FOMxtA66Zn+oPCyT23Jo5gcjWAPqjEJYOY+y4WDaGM7
6rGKloEuuVWhT2VQHi/5vG70/VhmdRNVa90qoieyJfCC5J79SRr9Lvh+CUsxpPen
J+dXTZub8dKn19NCymUo3Zs/HJkVtNLtXmC2aKAKNIZyEZt6c+Q8kCfufE/YTIfA
vIwPM9DFeBPwXIqv+o3XBOohN9BisDz15lRwvbbDD1LUaFl8wsVKxnRUClUUTYe1
QX3i3JyyngbTsujeUqzqLIxr0fbZVWodIv1q7PGtLusMnCAM9RVYSzqi1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLLN2u2Ic1lmaHT/ElHK4dkGNLXbMB8GA1UdIwQY
MBaAFJTlnSRdFQ3DjEiWJj3L3LvWdHCnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDIt
ZWU5NWI2Y2MzNDc0LzEvc3MzYTdZaHpXV1pvZFA4U1VjcmgyUVkwdGRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDItZWU5NWI2Y2MzNDc0
LzEvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwmugMA0G
CSqGSIb3DQEBCwUAA4IBAQBLljJK7yrqXzYYdwlKuFQe+rHmPO2iDXGnJ8j/KV63
RMrVYu00bt8+HMqdm/Uy6gwUwduia1dszrbfbrPHX/EqSxLX1w6zYGO1eUPHFzBZ
hGhv88nBU4jS8PWjs7WIOzcjTdQwoStmSV5/TN2Nbfn9lzE3e47hB68DMHYsEDfn
UeZm9i8p9J+6dQc5ls5Ld6Ixrxd/kU++X+Ek5wIYv3KWJkKdmVYS49bgcP0tzDNf
Zv+Kt81U6gOa9m/DgLwcdMcZBxQzKjaTPpnR0Aoclo3X58aODfrgrBLz5lUBXaAb
8ODAi1YCjKej0daROE+4maCf5qZaOjWfOoXP3SRUsWCd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org